CVE-2010-0285 — Screensaver vulnerability

10 documents10 sources

Severity

5.6MEDIUMNVD

EPSS

0.1%

top 75.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gnome Screensaver

Timeline

PublishedFeb 24

Latest updateMay 2

Description

gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor.

CVSS vector

AV:L/AC:H/C:C/I:C/A:NExploitability: 1.9 | Impact: 9.2

Affected Packages1 packages

▶NVDgnome/screensaver5 versions+4

🔴Vulnerability Details

GHSA

GHSA-h2mw-974c-6pw2: gnome-screensaver 2↗2022-05-02

▶

OSV

CVE-2010-0285: gnome-screensaver 2↗2010-02-24

▶

CVEList

CVE-2010-0285: gnome-screensaver 2↗2010-02-24

▶

💥Exploits & PoCs

Exploit-DB

SAP Crystal Reports - Information Disclosure↗2019-07-01

▶

📋Vendor Advisories

Microsoft

Windows Uniscribe Information Disclosure Vulnerability↗2017-06-13

▶

Ubuntu

gnome-screensaver vulnerabilities↗2010-03-08

▶

Debian

CVE-2010-0285: gnome-screensaver - gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configu...↗2010

▶

Red Hat

gnome-screensaver insecurely unlocks screen when moving from one monitor to two↗2009-08-31

▶

💬Community

Bugzilla

CVE-2010-0285 gnome-screensaver insecurely unlocks screen when moving from one monitor to two↗2010-01-21

▶